$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2a7f51a-c84c-4e35-abaf-ccd73a60f87c.roa File: d2a7f51a-c84c-4e35-abaf-ccd73a60f87c.roa (raw, json) Hash identifier: wurIoVpxLKoLjQIvJYbjLII5t1LxjumFopGhh6hSdck= Subject key identifier: 44:44:02:C1:2E:92:8A:E0:CE:7B:DE:B8:03:68:86:43:35:77:0A:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1EFBE8EAA9551AA5FD3011DF8E91E85634F0EDDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2a7f51a-c84c-4e35-abaf-ccd73a60f87c.roa Signing time: Tue 05 Aug 2025 22:08:28 +0000 ROA not before: Tue 05 Aug 2025 22:08:28 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 16.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:fb:e8:ea:a9:55:1a:a5:fd:30:11:df:8e:91:e8:56:34:f0:ed:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 22:08:28 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=2e64642f5c345ee64f0548a0a5572cbcaf47dd9a5cad966e099c78aa0a7af13f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:be:14:dc:87:25:31:98:28:90:eb:8a:f3:72: 72:4d:1c:54:d5:42:ca:b5:4f:5e:94:18:c7:c8:f3: 03:e1:96:6a:47:63:e9:0b:b5:f1:70:96:ae:b6:9f: 1c:d5:b7:29:fd:64:1e:c2:07:9b:0d:0a:b3:a6:1d: dc:93:93:5d:4f:0c:47:dd:48:1d:da:c7:6f:a5:47: 62:f9:f3:10:d9:4b:3b:4b:81:b3:6b:00:13:e9:00: ce:66:73:45:5b:cb:77:13:63:6f:b1:57:d8:27:d7: bf:58:cc:f1:14:59:5b:cc:ba:30:d5:f8:fd:11:6a: 49:9e:62:97:41:11:c0:9e:a1:90:31:f7:e2:e8:41: 84:c1:3b:90:78:9a:a7:47:ae:16:91:c0:7d:f7:26: f0:c2:ff:74:d0:27:1d:b1:56:d4:3a:1a:73:52:ed: af:25:ca:00:45:05:1e:3b:c7:ab:1d:37:3a:ae:ad: 7e:1e:31:8c:b0:f0:75:6f:10:72:a6:7e:b3:d7:48: ea:fe:8a:ca:c0:50:20:45:6f:16:fd:71:9f:90:0f: 06:eb:3a:c6:63:14:5f:94:ee:de:a3:78:c2:4a:8e: 7c:eb:d6:bc:d1:87:47:90:ab:76:0d:89:d5:10:3f: 5c:ac:d1:9e:2e:91:0f:2e:82:c3:c5:ad:0d:cf:cb: ed:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:44:02:C1:2E:92:8A:E0:CE:7B:DE:B8:03:68:86:43:35:77:0A:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2a7f51a-c84c-4e35-abaf-ccd73a60f87c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:17:71:4e:52:9c:0b:27:dc:7b:6a:f0:07:3a:da:2d:f8:41: 53:a6:8d:00:44:6e:2d:37:29:2f:7d:30:60:0d:e4:28:f0:56: 6e:dd:8f:86:61:02:39:a6:e0:d1:fe:fe:72:34:dc:a7:62:cf: d5:3b:97:e2:ee:4e:97:dd:c6:f4:6e:7d:dd:72:9a:d2:c7:85: 80:ee:62:a4:23:1d:3d:b0:d6:5f:ee:16:da:40:82:7e:b9:21: 87:8e:12:8c:02:b2:ca:b8:52:6e:6c:e4:e6:3c:c2:bd:78:15: bc:ef:1f:c8:39:05:ef:0e:be:1c:82:52:a8:45:75:dd:c8:eb: 65:ec:27:f3:04:89:b9:54:d4:05:76:e6:a5:40:ca:6b:64:a4: 54:d2:0e:9f:02:cc:02:0c:e9:ee:d7:6f:2b:2b:b7:91:62:28: 6f:a0:e5:f7:26:b9:6b:a1:6d:28:21:19:7f:c3:93:8e:90:ac: 2c:4b:4e:d6:52:c6:62:14:8b:af:e4:28:9f:9c:48:a7:20:34: 71:bf:40:48:81:1a:5a:5b:7c:9c:4c:a6:a4:18:51:5c:6d:3d: 23:c6:0a:7d:ee:c8:de:c3:a6:29:6d:8d:dd:36:8c:ae:40:fe: 0c:dd:c5:b1:a7:0e:1a:f8:af:6b:71:da:6d:50:cb:bb:03:b9: 47:a4:b1:84 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHvvo6qlVGqX9MBHfjpHoVjTw7d4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MjIwODI4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTY0NjQyZjVjMzQ1ZWU2NGYwNTQ4YTBhNTU3MmNiY2Fm NDdkZDlhNWNhZDk2NmUwOTljNzhhYTBhN2FmMTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCevhTchyUxmCiQ64rzcnJNHFTVQsq1T16UGMfI8wPhlmpH Y+kLtfFwlq62nxzVtyn9ZB7CB5sNCrOmHdyTk11PDEfdSB3ax2+lR2L58xDZSztL gbNrABPpAM5mc0Vby3cTY2+xV9gn179YzPEUWVvMujDV+P0RakmeYpdBEcCeoZAx 9+LoQYTBO5B4mqdHrhaRwH33JvDC/3TQJx2xVtQ6GnNS7a8lygBFBR47x6sdNzqu rX4eMYyw8HVvEHKmfrPXSOr+isrAUCBFbxb9cZ+QDwbrOsZjFF+U7t6jeMJKjnzr 1rzRh0eQq3YNidUQP1ys0Z4ukQ8ugsPFrQ3Py+3ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUREQCwS6SiuDOe964A2iGQzV3CqUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyYTdmNTFhLWM4NGMtNGUzNS1hYmFmLWNjZDczYTYwZjg3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQPDANBgkqhkiG9w0BAQsFAAOCAQEAkhdxTlKcCyfce2rwBzraLfhBU6aN AERuLTcpL30wYA3kKPBWbt2PhmECOabg0f7+cjTcp2LP1TuX4u5Ol93G9G593XKa 0seFgO5ipCMdPbDWX+4W2kCCfrkhh44SjAKyyrhSbmzk5jzCvXgVvO8fyDkF7w6+ HIJSqEV13cjrZewn8wSJuVTUBXbmpUDKa2SkVNIOnwLMAgzp7tdvKyu3kWIob6Dl 9ya5a6FtKCEZf8OTjpCsLEtO1lLGYhSLr+Qon5xIpyA0cb9ASIEaWlt8nEympBhR XG09I8YKfe7I3sOmKW2N3TaMrkD+DN3FsacOGviva3HabVDLuwO5R6SxhA== -----END CERTIFICATE-----Generated at Sat Aug 9 05:36:10 2025 by rpki-client